Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/UwzxqLxc9Xw30oV4HcbBL3TlrEI.roa
File: UwzxqLxc9Xw30oV4HcbBL3TlrEI.roa (raw, json)
Hash identifier: Cs5iWYzqSUIbmAvZefgjWnWHo14xSkjnvJ4iaAcRsno=
Subject key identifier: 53:0C:F1:A8:BC:5C:F5:7C:37:D2:85:78:1D:C6:C1:2F:74:E5:AC:42
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 019294E24DBCD83F5543E4C1BE76E658466F
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/UwzxqLxc9Xw30oV4HcbBL3TlrEI.roa
Signing time: Wed 16 Oct 2024 10:31:51 +0000
ROA not before: Wed 16 Oct 2024 10:31:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214312
IP address blocks: 2a05:1084::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:94:e2:4d:bc:d8:3f:55:43:e4:c1:be:76:e6:58:46:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Oct 16 10:31:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=530cf1a8bc5cf57c37d285781dc6c12f74e5ac42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:ec:a5:35:29:d9:81:59:ed:15:53:b4:8c:
d7:fc:c4:00:cf:35:f7:f3:76:c5:a5:39:ef:1f:2f:
e0:85:47:c8:36:b2:0a:53:91:2f:36:7e:f7:3c:da:
dc:96:8d:4d:0c:68:c6:f5:1c:f8:a0:c5:e7:ae:ef:
c8:0a:ff:67:37:87:8e:2e:8e:f1:77:c2:97:ac:0e:
40:32:42:a2:36:a4:fd:7a:e9:55:6d:32:9e:2d:29:
b9:5d:cb:0a:ea:5a:c5:ea:da:de:d6:f0:aa:59:e2:
18:a5:3a:b7:4a:06:5d:15:e4:1b:da:fc:81:07:eb:
f3:5f:d0:4b:51:48:3d:79:88:4d:e0:aa:fb:f9:b3:
cc:dd:50:1e:be:2a:b0:49:55:d1:a7:d2:0e:57:9d:
83:5f:a3:aa:dd:9a:14:67:bd:c1:3e:30:58:99:4e:
2f:84:93:a5:2c:b5:51:67:12:47:77:6d:86:fe:e1:
77:cb:ab:db:79:73:0e:e5:1d:a5:8c:ff:75:bf:55:
6c:39:58:f5:15:d5:b4:a0:27:0a:60:c3:df:b8:dd:
ff:22:0e:5c:92:73:11:57:17:b0:de:6b:cf:31:9e:
c1:18:c3:f1:81:d9:5f:a2:a5:d8:0e:e4:f9:a6:dd:
2f:56:68:d8:a1:76:f4:50:fe:a5:07:cf:66:5d:66:
9c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0C:F1:A8:BC:5C:F5:7C:37:D2:85:78:1D:C6:C1:2F:74:E5:AC:42
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/UwzxqLxc9Xw30oV4HcbBL3TlrEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1084::/32
Signature Algorithm: sha256WithRSAEncryption
17:de:c6:0e:94:2f:7d:74:10:b9:70:44:d6:7f:6a:39:c7:43:
cf:87:93:c0:28:45:64:72:27:22:c6:72:bc:df:e5:13:77:3d:
bd:6f:f6:91:9a:24:64:03:5c:22:88:b4:55:8d:34:eb:05:30:
c7:2e:7e:02:77:b3:0b:b5:f2:78:41:d2:46:00:cd:f7:27:14:
82:af:b4:68:93:e3:39:3e:86:e8:62:0b:00:4e:c5:f7:cc:2e:
ef:0e:17:25:68:a4:5b:50:a9:54:20:56:ef:a3:fa:1c:16:82:
21:18:68:81:52:a2:8e:96:0a:6d:63:7a:4e:87:26:a1:0d:06:
ee:24:08:6b:5c:95:40:6f:10:7e:a9:7d:f5:fa:cf:db:ed:b3:
0b:00:92:b0:f1:3d:1a:d0:fe:7c:cb:eb:22:0d:68:5a:80:d5:
1b:68:88:98:50:b6:aa:3e:d7:88:a5:ed:c8:81:34:82:79:56:
e6:57:54:33:20:f7:5e:79:2a:b1:3e:8d:b0:74:2a:33:10:13:
c6:ff:32:e5:1b:42:c3:ed:af:cd:c9:2a:0a:f3:5e:bb:db:41:
69:c1:34:76:e9:6b:15:8a:df:d1:db:55:c1:92:46:91:08:a7:
6f:dc:06:7f:06:23:2f:1f:d9:aa:ca:74:e5:91:0c:cf:df:73:
6c:68:60:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:40:03 2024 by rpki-client on console-ams.rpki-client.org